./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1952964592 <...> Warning: Permanently added '10.128.0.126' (ECDSA) to the list of known hosts. execve("./syz-executor1952964592", ["./syz-executor1952964592"], 0x7fff2e13b430 /* 10 vars */) = 0 brk(NULL) = 0x555556eb3000 brk(0x555556eb3c40) = 0x555556eb3c40 arch_prctl(ARCH_SET_FS, 0x555556eb3300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1952964592", 4096) = 28 brk(0x555556ed4c40) = 0x555556ed4c40 brk(0x555556ed5000) = 0x555556ed5000 mprotect(0x7f6a9d557000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 socket(AF_ALG, SOCK_SEQPACKET, 0) = 3 bind(3, {sa_family=AF_ALG, salg_type="hash", salg_feat=0, salg_mask=0, salg_name="cryptd(crct10dif-generic)"}, 88) = 0 accept4(3, NULL, NULL, 0) = 4 sendmmsg(4, [{msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=MSG_DONTWAIT}, msg_len=0}], 1, MSG_MORE) = 1 [ 64.653004][ T5003] general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] PREEMPT SMP KASAN [ 64.664775][ T5003] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] [ 64.673193][ T5003] CPU: 1 PID: 5003 Comm: syz-executor195 Not tainted 6.4.0-rc5-syzkaller-00929-gded5c1a16ec6 #0 [ 64.683603][ T5003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 64.694027][ T5003] RIP: 0010:cryptd_hash_export+0x47/0xa0 [ 64.699779][ T5003] Code: 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 75 4e 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 60 48 8d 7b 20 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 40 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 20 48 8d [ 64.719934][ T5003] RSP: 0018:ffffc90003acfd48 EFLAGS: 00010202 [ 64.726050][ T5003] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 64.734418][ T5003] RDX: 0000000000000004 RSI: ffffffff83e46723 RDI: 0000000000000020 [ 64.742850][ T5003] RBP: ffff888015a96528 R08: 0000000000000001 R09: 0000000000000000 [ 64.750912][ T5003] R10: 0000000000000001 R11: ffffffff81d71db5 R12: ffff88802945bb08 [ 64.759269][ T5003] R13: 0000000000000001 R14: ffff88801aba6000 R15: ffff8880220c1648 [ 64.767247][ T5003] FS: 0000555556eb3300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 64.776270][ T5003] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 64.783394][ T5003] CR2: 0000000020004e80 CR3: 0000000076861000 CR4: 00000000003506e0 [ 64.791649][ T5003] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 64.799624][ T5003] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 64.807592][ T5003] Call Trace: [ 64.810868][ T5003] [ 64.813796][ T5003] ? die_addr+0x3c/0xa0 [ 64.818006][ T5003] ? exc_general_protection+0x129/0x230 [ 64.823599][ T5003] ? asm_exc_general_protection+0x26/0x30 [ 64.829457][ T5003] ? kasan_set_track+0x25/0x30 [ 64.834416][ T5003] ? cryptd_hash_export+0x13/0xa0 [ 64.839578][ T5003] ? cryptd_hash_export+0x47/0xa0 [ 64.844611][ T5003] ? cryptd_hash_export+0x13/0xa0 [ 64.849643][ T5003] hash_accept+0x229/0x670 [ 64.854161][ T5003] do_accept+0x380/0x510 [ 64.858811][ T5003] ? __ia32_sys_listen+0x80/0x80 [ 64.863762][ T5003] ? spin_bug+0x1c0/0x1c0 [ 64.868247][ T5003] ? do_raw_spin_unlock+0x175/0x230 [ 64.873635][ T5003] ? _raw_spin_unlock+0x28/0x40 [ 64.878595][ T5003] ? alloc_fd+0x2e4/0x750 [ 64.882969][ T5003] __sys_accept4+0x9a/0x120 [ 64.887503][ T5003] __x64_sys_accept4+0x97/0x100 [ 64.892373][ T5003] do_syscall_64+0x39/0xb0 [ 64.896802][ T5003] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 64.902713][ T5003] RIP: 0033:0x7f6a9d4eac09 [ 64.907143][ T5003] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 64.927012][ T5003] RSP: 002b:00007fff241f3198 EFLAGS: 00000246 ORIG_RAX: 0000000000000120 [ 64.935510][ T5003] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6a9d4eac09 [ 64.943833][ T5003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 64.951798][ T5003] RBP: 00007f6a9d4aedb0 R08: 0000000000000000 R09: 0000000000000000 [ 64.959880][ T5003] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a9d4aee40 [ 64.967847][ T5003] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 64.975820][ T5003] [ 64.978831][ T5003] Modules linked in: [ 64.983214][ T5003] ---[ end trace 0000000000000000 ]--- [ 64.988823][ T5003] RIP: 0010:cryptd_hash_export+0x47/0xa0 [ 64.995392][ T5003] Code: 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 75 4e 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 60 48 8d 7b 20 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 40 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 20 48 8d [ 65.016314][ T5003] RSP: 0018:ffffc90003acfd48 EFLAGS: 00010202 [ 65.022618][ T5003] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 65.030764][ T5003] RDX: 0000000000000004 RSI: ffffffff83e46723 RDI: 0000000000000020 [ 65.039358][ T5003] RBP: ffff888015a96528 R08: 0000000000000001 R09: 0000000000000000 [ 65.049838][ T5003] R10: 0000000000000001 R11: ffffffff81d71db5 R12: ffff88802945bb08 [ 65.058865][ T5003] R13: 0000000000000001 R14: ffff88801aba6000 R15: ffff8880220c1648 [ 65.067816][ T5003] FS: 0000555556eb3300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 65.077108][ T5003] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.084061][ T5003] CR2: 0000555a4edc6008 CR3: 0000000076861000 CR4: 00000000003506f0 [ 65.092564][ T5003] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.100655][ T5003] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.108826][ T5003] Kernel panic - not syncing: Fatal exception [ 65.114942][ T5003] Kernel Offset: disabled [ 65.119258][ T5003] Rebooting in 86400 seconds..